Commits · 58b079a25961d15e8ff24342a7ba51bf125e7469 · CodeLinaro / public-release-test / platform / system / sepolicy

Aug 10, 2016
- Allow keystore to access KeyAttestationApplicationIDProviderService · 58b079a2
  Janis Danisevskis authored 8 years ago
```
Bug: 22914603
Change-Id: I8ae1a786702694ca2bb8707a4c142b8a233042ee
```
  58b079a2
Aug 08, 2016
- resolve merge conflicts of 9cc3a580 to stage-aosp-master am: 8ba28103 am: 47566d65 · 8d47cb6d
  dcashman authored 8 years ago
```
am: 4f3b263c

Change-Id: Ifff790bf000689c2b93032762d0534d46f02f3ad
```
  8d47cb6d
- resolve merge conflicts of 9cc3a580 to stage-aosp-master am: 8ba28103 · 4f3b263c
  dcashman authored 8 years ago
```
am: 47566d65

Change-Id: Ic3dc41cdec449d9ef67c41d08cbbf83d293654b5
```
  4f3b263c
- resolve merge conflicts of 9cc3a580 to stage-aosp-master · 47566d65
  dcashman authored 8 years ago
```
am: 8ba28103

Change-Id: I0f6d2305b824a9793faaab75e92715172fc30880
```
  47566d65
- resolve merge conflicts of 9cc3a580 to stage-aosp-master · 8ba28103
  dcashman authored 8 years ago
```
Change-Id: I2593e100bdad420d0d988fbaeb8d2ec259b8df1d
```
  8ba28103
- Merge "appdomain: neverallow direct input_device access" · 9cc3a580
  Treehugger Robot authored 8 years ago
  
  9cc3a580
Aug 05, 2016

resolve merge conflicts of 5423db6e to stage-aosp-master am: 5e6aa65f am: b10f3fbc · dd3c9614
Daniel Micay authored 8 years ago
```
am: cbd7b182

Change-Id: I5933e92a19410a5cb51af6e15b5a4d45487df699
```
dd3c9614
resolve merge conflicts of 5423db6e to stage-aosp-master am: 5e6aa65f · cbd7b182
dcashman authored 8 years ago
```
am: b10f3fbc

Change-Id: Ic241e06c93dafd28f9b15bbe71a60d57e0294c30
```
cbd7b182
resolve merge conflicts of 5423db6e to stage-aosp-master · b10f3fbc
Daniel Micay authored 8 years ago
```
am: 5e6aa65f

Change-Id: I0e9dbefe4f393b13662bf9a520c878de5f221397
```
b10f3fbc
resolve merge conflicts of 5423db6e to stage-aosp-master · 5e6aa65f
dcashman authored 8 years ago
```
Change-Id: I16706423534069f69bd0305ac500a9cd74db55a6
```
5e6aa65f
Merge "Remove WiFi permissions from netd" · 099fed44
TreeHugger Robot authored 8 years ago

099fed44
Merge "te_macros: drop unused macros" am: 2b33112a am: 98ff70cc am: 006582cd · 9c9c5d09
William Roberts authored 8 years ago
```
am: 9cd46da0  -s ours

Change-Id: Ic7780a46482d5767f7eb0205ade16ec28a4a3a01
```
9c9c5d09
Merge "te_macros: drop unused macros" am: 2b33112a am: 98ff70cc · 9cd46da0
William Roberts authored 8 years ago
```
am: 006582cd

Change-Id: I8b07c10415fe02c707da926f3f19e2a584c027b3
```
9cd46da0
Merge "te_macros: drop unused macros" am: 2b33112a · 006582cd
William Roberts authored 8 years ago
```
am: 98ff70cc

Change-Id: Ia8d1ee546acddb9b19827e6db9d6ce1d8d25411d
```
006582cd

restrict access to timing information in /proc · 5423db6e

Daniel Micay authored 8 years ago

These APIs expose sensitive information via timing side channels. This
leaves access via the adb shell intact along with the current uses by
dumpstate, init and system_server.

The /proc/interrupts and /proc/stat files were covered in this paper:

https://www.lightbluetouchpaper.org/2016/07/29/yet-another-android-side-channel/

The /proc/softirqs, /proc/timer_list and /proc/timer_stats files are
also relevant.

Access to /proc has been greatly restricted since then, with untrusted
apps no longer having direct access to these, but stricter restrictions
beyond that would be quite useful.

Change-Id: Ibed16674856569d26517e5729f0f194b830cfedd

5423db6e

Merge "te_macros: drop unused macros" · 98ff70cc
William Roberts authored 8 years ago
```
am: 2b33112a

Change-Id: I08987ae7229ebbbbcf980be4aaef2eb8fb7e24da
```
98ff70cc
Merge "te_macros: drop unused macros" · 2b33112a
Treehugger Robot authored 8 years ago

2b33112a

Aug 04, 2016

te_macros: drop unused macros · 2925c1cc

William Roberts authored 8 years ago


boolean and setenforce macros are not used in base policy
and cannot be used in any policy, since they violate
neverallow rules.

Remove these from the policy.

Change-Id: Icc0780eaf06e95af36306031e1f615b05cb79869
Signed-off-by: William Roberts <william.c.roberts@intel.com>

2925c1cc

Aug 03, 2016

sepolicy: Add CAP_WAKE_ALARM to system_server.te am: 19b6485f am: e4025649 am: 4a72e72a · 8695dcd1
John Stultz authored 8 years ago
```
am: f4600073

Change-Id: If145723bcbaee8cf5f7678707f7f155bf49fc841
```
8695dcd1
sepolicy: Add CAP_WAKE_ALARM to system_server.te am: 19b6485f am: e4025649 · f4600073
John Stultz authored 8 years ago
```
am: 4a72e72a

Change-Id: Ib5ea655ebdd322413f1f4c056628876b2d4cf7d7
```
f4600073
sepolicy: Add CAP_WAKE_ALARM to system_server.te am: 19b6485f · 4a72e72a
John Stultz authored 8 years ago
```
am: e4025649

Change-Id: Ief8c1bb3927c2dca50459db8e71b330e0a58608e
```
4a72e72a
sepolicy: Add CAP_WAKE_ALARM to system_server.te · e4025649
John Stultz authored 8 years ago
```
am: 19b6485f

Change-Id: I0574ab7e70a8b3d906a5b11368239d58d1d64e70
```
e4025649

sepolicy: Add CAP_WAKE_ALARM to system_server.te · 19b6485f

John Stultz authored 8 years ago


With v4.8+ kernels, CAP_WAKE_ALARM is needed to set
alarmtimers via timerfd (this change is likely to be
backported to stable as well).

However, with selinux enabled, we also need to allow
the capability on the system_server so this enables it.

Change-Id: I7cd64d587906f3fbc8a129d48a4db07373c74c7e
Signed-off-by: John Stultz <john.stultz@linaro.org>

19b6485f

Aug 02, 2016

Remove WiFi permissions from netd · fb5b13ee

Christopher Wiley authored 8 years ago

Bug: 30041228
Test: WiFi tethering, client mode continues to function

Change-Id: I95a583ad4d57642f4731e415abb77732df5289ac

fb5b13ee

Jul 29, 2016

Allow wificond to drop signals on hostapd · 762cb7c4

Christopher Wiley authored 8 years ago

Stopping hostapd abruptly with SIGKILL can sometimes leave the driver
in a poor state.  Long term, we should pro-actively go in and clean up
the driver.  In the short term, it helps tremendously to send SIGTERM
and give hostapd time to clean itself up.

Bug: 30311493
Test: With patches in this series, wificond can cleanly start and stop
      hostapd in integration tests.

Change-Id: Ic770c2fb1a1b636fced4620fe6e24d1c8dcdfeb8

762cb7c4

Jul 28, 2016
- Merge "Give wificond permission to start/stop init services" · 321a26ef
  Christopher Wiley authored 8 years ago
  
  321a26ef
- Merge "Give hostapd permissions to use its control socket" · 60db356d
  TreeHugger Robot authored 8 years ago
  
  60db356d
Jul 27, 2016
- Merge \\\\"Simplify /dev/kmsg SELinux policy.\\\\" am: aa2aa219 am: 98fbb318 am: c817c3b0 · 75b4b608
  Elliott Hughes authored 8 years ago
```
am: 8da3ddd4

Change-Id: I6dddcd102ecb97c243868a7273f55e73cfb4d475
```
  75b4b608
- Merge \\\"Simplify /dev/kmsg SELinux policy.\\\" am: aa2aa219 am: 98fbb318 · 8da3ddd4
  Elliott Hughes authored 8 years ago
```
am: c817c3b0

Change-Id: Id6bd5f7e772fd00e3adef6c5f9fbf537799b0aab
```
  8da3ddd4
- Merge \\"Simplify /dev/kmsg SELinux policy.\\" am: aa2aa219 · c817c3b0
  Elliott Hughes authored 8 years ago
```
am: 98fbb318

Change-Id: Ic7ffa7d6571647a165f83b47906f33908ac7745d
```
  c817c3b0
- Merge \"Simplify /dev/kmsg SELinux policy.\" · 98fbb318
  Elliott Hughes authored 8 years ago
```
am: aa2aa219

Change-Id: I5e1634a8c0cee6cb759e0acea086b68dbd21fb7e
```
  98fbb318
- Merge "Simplify /dev/kmsg SELinux policy." · aa2aa219
  Elliott Hughes authored 8 years ago
  
  aa2aa219
- Allow the NFC process to access hwservicemanager. · 9c769aff
  Martijn Coenen authored 8 years ago
```
Add a macro to make this easier for other processes
as well.

Change-Id: I489d0ce042fe5ef88dc767a6fbdb9b795be91601
(cherry picked from commit c2b9c1561e4bd7ac86d78b44ca7927994e781da0)
```
  9c769aff
- Initial hardware servicemanager sepolicy. · e13678f4
  Martijn Coenen authored 8 years ago
```
Change-Id: I07d188e4dd8801a539db1e9f3edf82a1d662648e
(cherry picked from commit 61a082a55dbc2798d50d0d4b766151d69334729a)
```
  e13678f4
Jul 26, 2016

appdomain: neverallow direct input_device access · e83b9f03

William Roberts authored 8 years ago


Applications should not access /dev/input/* for events, but
rather use events handled via the activity mechanism.

Change-Id: I0182b6be1b7c69d96e4366ba59f14cee67be4beb
Signed-off-by: William Roberts <william.c.roberts@intel.com>

e83b9f03

Simplify /dev/kmsg SELinux policy. · 63b33dc2

Elliott Hughes authored 8 years ago

Bug: http://b/30317429
Change-Id: I5c499c48d5e321ebdf588a162d29e949935ad8ee
Test: adb shell dmesg | grep ueventd

63b33dc2

allow policy to create a file by vfat (fs_type) for a case using sdcardfs am:... · 71ebb653

Eric Bae authored 8 years ago

allow policy to create a file by vfat (fs_type) for a case using sdcardfs am: 362d6ff1 am: 0f38c642 am: 0eb23a1e
am: 55933956

Change-Id: I1775ecce48c2dc6a0a8d9e855194a03ec9be6195

71ebb653

resolve merge conflicts of c15090b3 to stage-aosp-master am: e88095d8 am: 42a5f5e8 · 3e147641
Daniel Rosenberg authored 8 years ago
```
am: 249cb987

Change-Id: I4b3991f3d7efd049fe4d29c57c1e043b12cbd898
```
3e147641

allow policy to create a file by vfat (fs_type) for a case using sdcardfs am:... · 55933956

Eric Bae authored 8 years ago

allow policy to create a file by vfat (fs_type) for a case using sdcardfs am: 362d6ff1 am: 0f38c642
am: 0eb23a1e

Change-Id: Ib49f29933dd38af1fdfca8ae93a02e9cd5e1f264

55933956

resolve merge conflicts of c15090b3 to stage-aosp-master am: e88095d8 · 249cb987
Daniel Rosenberg authored 8 years ago
```
am: 42a5f5e8

Change-Id: I2a30458bce94d7600aecedbc6bffbcca44c2669b
```
249cb987